Vulnerability in Cdac-noida E-sushrut, Hospital Management Information System (Hmis)
CVE-2026-42514
This vulnerability exists in e-Sushrut due to exposure of OTPs in plaintext within API responses. A remote attacker could exploit this vulnerability by intercepting API responses containing valid OTPs. Successful exploitation of this vuln…
EPSS: 0.001 (34.3th percentile) — read the EPSS interpretation.
Affected products
- Cdac-noida E-sushrut, Hospital Management Information System (Hmis) — versions Previous versions
Weakness classification (CWE)
References
- vdisclose@cert-in.org.in (third-party-advisory)